Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/GxgMN1UWzxAOO0C9OmEkColxV_g.roa
File: GxgMN1UWzxAOO0C9OmEkColxV_g.roa (raw, json)
Hash identifier: PxkFMraEPeHndmnH7BTH2sRdMilKsfe/Bk9f5MdNwLs=
Subject key identifier: 1B:18:0C:37:55:16:CF:10:0E:3B:40:BD:3A:61:24:0A:89:71:57:F8
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 43736F34
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/GxgMN1UWzxAOO0C9OmEkColxV_g.roa
Signing time: Tue 14 Jun 2022 05:36:44 +0000
ROA not before: Tue 14 Jun 2022 05:36:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42616
IP address blocks: 89.33.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1131638580 (0x43736f34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jun 14 05:36:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b180c375516cf100e3b40bd3a61240a897157f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9d:ab:13:f1:50:22:22:e2:3a:d2:a0:98:01:
fd:2e:63:15:6a:5d:f6:1a:39:de:6c:f9:1d:fb:38:
a1:06:ae:b3:f4:f1:54:e7:31:9a:93:21:7f:10:4f:
c8:3f:ed:b3:42:0f:88:05:d9:76:d4:90:d7:0e:ce:
b3:fa:15:ce:98:e6:87:2e:37:74:fe:79:51:fb:48:
ca:86:39:19:7a:04:a8:1f:62:77:a2:c3:69:b9:d5:
a8:f4:88:bd:ac:01:61:70:7b:ea:da:f3:6d:11:f9:
bd:0b:38:77:17:ce:97:52:fd:6a:1c:9f:2e:9a:92:
f4:5a:33:1b:a3:c1:25:f1:93:8f:6f:3b:a0:c2:ed:
a5:b3:6b:9f:1a:43:9d:ab:e1:40:35:62:34:e1:49:
82:44:90:10:c6:6b:4e:bf:49:99:22:91:39:62:59:
64:83:ce:fe:fe:1d:aa:12:5f:0a:01:5d:77:be:be:
4c:4d:7a:7d:5a:91:4a:d8:5d:59:7c:a1:5e:37:38:
bc:e2:0f:36:1e:02:c6:ff:da:b6:1e:5c:ce:02:8e:
e5:f8:dd:40:69:29:94:9e:b6:3d:de:18:e4:07:42:
a8:28:1c:f8:0b:e6:03:95:80:d0:ab:86:81:fc:11:
79:af:88:22:96:70:2a:c6:06:26:2c:95:67:1e:0d:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:18:0C:37:55:16:CF:10:0E:3B:40:BD:3A:61:24:0A:89:71:57:F8
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/GxgMN1UWzxAOO0C9OmEkColxV_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.105.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:a2:7d:ff:ed:27:1a:c2:0a:e4:c9:a5:20:b5:f9:a5:1d:f9:
36:67:45:c6:cc:cb:09:24:d3:be:73:82:a2:79:b8:fd:6a:39:
4f:60:23:ed:f1:57:55:fd:18:b4:5a:a5:a0:a3:bd:c4:0e:b1:
9f:d6:9b:4b:4c:77:56:f3:34:e2:42:fc:3f:06:96:39:50:a7:
c5:4a:09:a2:01:d8:72:01:57:49:c1:25:9f:12:9f:68:2a:75:
0d:ad:db:bb:eb:6c:93:01:93:80:e3:b4:c4:e5:a4:89:40:c5:
8b:ab:42:d0:61:f5:4c:bf:37:52:21:89:2c:b2:f8:19:43:82:
83:ce:62:5a:86:db:3c:bb:22:1c:6e:60:e3:45:c5:1f:b4:1a:
fe:d2:23:2b:ce:00:88:49:20:d3:0b:c4:6b:6f:d5:d1:3d:5f:
45:2b:4d:68:21:ba:71:41:7a:e2:cd:98:43:84:ca:f8:c7:dd:
f2:9b:ae:40:ed:55:c1:cb:f4:76:59:f1:74:ed:bf:57:44:c8:
58:80:b6:44:4c:8b:4b:cb:21:dc:6e:35:34:04:ac:38:a6:41:
98:fd:6d:c6:11:cc:57:72:63:12:7b:82:23:62:bb:1f:50:65:
0d:38:d3:9e:b9:41:31:df:7a:7c:ca:1b:95:84:dc:9e:8e:a2:
16:48:d2:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org